CVE-2020-10010: Path Traversal
Logging. A path handling issue was addressed with improved validation.
Other sources
A path handling issue was addressed with improved validation. This issue is fixed in macOS Big Sur 11.0.1, iOS 14.2 and iPadOS 14.2, tvOS 14.2, watchOS 7.1. A local attacker may be able to elevate their privileges.
Credit
Affected Software
Event History
Parent advisories
This vulnerability appears in the following advisories.
Peer vulnerabilities
Found alongside the following vulnerabilities.
- CVE-2020-27914
- CVE-2020-27915
- CVE-2020-27903
- CVE-2020-27910
- CVE-2020-27916
- CVE-2020-9943
- CVE-2020-9944
- CVE-2020-27906
- CVE-2020-27945
- CVE-2020-27908
- CVE-2020-27909
- CVE-2020-9960
- CVE-2020-10017
- CVE-2020-9949
- CVE-2020-9897
- CVE-2020-9883
- CVE-2020-10003
- CVE-2020-27922
- CVE-2020-9999
- CVE-2020-27937
- CVE-2020-9965
- CVE-2020-9966
- CVE-2020-27894
- CVE-2020-36615
- CVE-2021-1790
- CVE-2021-1775
- CVE-2020-29629
- CVE-2020-27942
- CVE-2020-9962
- CVE-2020-27952
- CVE-2020-9956
- CVE-2020-27931
- CVE-2020-27930
- CVE-2020-27927
- CVE-2020-29639
- CVE-2020-10002
- CVE-2020-9978
- CVE-2020-9955
- CVE-2020-27924
- CVE-2020-27912
- CVE-2020-27923
- CVE-2020-9876
- CVE-2020-10015
- CVE-2020-27897
- CVE-2020-27907
- CVE-2020-27919
- CVE-2020-9967
- CVE-2020-9975
- CVE-2020-27921
- CVE-2020-27904
- CVE-2019-14899
- CVE-2020-27950
- CVE-2020-9974
- CVE-2020-10016
- CVE-2020-27932
- CVE-2020-27917
- CVE-2020-27920
- CVE-2020-27911
- CVE-2020-9971
- CVE-2020-10014
- CVE-2020-10010
- CVE-2020-9941
- CVE-2020-9988
- CVE-2020-9989
- CVE-2020-10011
- CVE-2020-13524
- CVE-2020-10004
- CVE-2020-9996
- CVE-2020-27901
- CVE-2020-27900
- CVE-2019-20838
- CVE-2020-14155
- CVE-2020-10007
- CVE-2020-27896
- CVE-2020-9963
- CVE-2020-10012
- CVE-2020-10663
- CVE-2020-9945
- CVE-2020-9977
- CVE-2020-9942
- CVE-2020-9987
- CVE-2021-1803
- CVE-2020-9969
- CVE-2020-27893
- CVE-2021-1755
- CVE-2020-10005
- CVE-2020-9991
- CVE-2020-9849
- CVE-2020-15358
- CVE-2020-13631
- CVE-2020-13434
- CVE-2020-13435
- CVE-2020-13630
- CVE-2020-27899
- CVE-2020-10009
- CVE-2020-10008
- CVE-2020-27918
- CVE-2020-9947
- CVE-2020-9950
- CVE-2020-27898
- CVE-2020-27935
- CVE-2020-10006
- CVE-2020-27905
- CVE-2020-27936
- CVE-2020-27941
- CVE-2020-29621
- CVE-2020-29610
- CVE-2020-27948
- CVE-2020-10001
- CVE-2020-27946
- CVE-2020-27943
- CVE-2020-27944
- CVE-2020-29624
- CVE-2020-29608
- CVE-2020-27947
- CVE-2020-29612
- CVE-2020-27939
- CVE-2020-29625
- CVE-2020-29615
- CVE-2020-29616
- CVE-2020-29618
- CVE-2020-29611
- CVE-2020-29617
- CVE-2020-29619
- CVE-2020-27949
- CVE-2020-29620
- CVE-2020-27926
- CVE-2020-29633
- CVE-2020-29614
- CVE-2020-13520
- CVE-2020-9972
- CVE-2020-27938
- CVE-2020-29623
- CVE-2020-15969
- CVE-2020-27925
- CVE-2020-27902
Frequently Asked Questions
What is CVE-2020-10010?
CVE-2020-10010 is a vulnerability in Apple iOS, iPadOS, tvOS, macOS Big Sur, watchOS, Catalina, and Mojave that was addressed with improved validation for a path handling issue in the logging system.
Which software versions are affected by CVE-2020-10010?
Apple iOS, iPadOS, tvOS, macOS Big Sur, watchOS, Catalina, and Mojave versions up to but not including 14.2, 11.0.1, 7.1, 11.1 respectively are affected by CVE-2020-10010.
How can I fix CVE-2020-10010?
To fix CVE-2020-10010, update your Apple devices to iOS, iPadOS, tvOS, macOS Big Sur, watchOS, Catalina, and Mojave versions 14.2, 11.0.1, 7.1, 11.1 respectively, or later.
Where can I find more information about CVE-2020-10010?
You can find more information about CVE-2020-10010 on Apple's official security advisory pages: [link1](https://support.apple.com/en-us/HT211929), [link2](https://support.apple.com/en-us/HT211930), [link3](https://support.apple.com/en-us/HT212011).